Senior Security Operations Engineer
United States - Remote
R
USD 120K-150K (estimate) Senior-level Full Time
Tasks
- Build MITRE ATT&CK detection rules
- Build SIEM and EDR correlation rules
- Build SOAR playbooks
- Build vulnerability dashboards in Google SecOps
- Close logging coverage gaps
- Conduct detection quality reviews
- Configure Cloud Funnel log export
- Configure Google SecOps SOAR
- Coordinate remediation with engineering and infrastructure
- Define remediation SLAs by severity
- Develop SOC operational dashboards
- Develop custom parsers for AWS security services
- Drive SOC OKR execution
- Drive SentinelOne deployment
- Establish auditable SOC processes
- Identify analyst skill gaps and coach junior analysts
- Integrate incident response with Jira Service Management
- Maintain incident response runbooks
- Manage Google SecOps RBAC
- Manage MSSP transition coverage
- Manage SentinelOne RBAC and policies
- Operationalize vulnerability scanning cadence
- Optimize alert thresholds
- Own SIEM log ingestion pipeline
- Provide MSSP technical oversight and SLA enforcement
- Provide day to day SOC technical leadership
- Review MSSP deliverables for quality
- Run detection lifecycle tuning and retirement
- Run tabletop exercises and after action reviews
- Serve as incident response escalation point
- Track vulnerability SLA compliance metrics
Perks/Benefits
- Equity
- Flexible hours
- Generous PTO
- Medical/Dental/Vision insurance
- Performance bonus eligible
- Remote-first culture
Skills/Tech-stack
800-172 | 800-53 | AWS CloudTrail | AWS Config | AWS GovCloud | AWS GuardDuty | AWS Inspector | AWS Security | AWS Security Hub | AWS WAF | Alert Correlation | Azure Defender | Azure Defender for Cloud | Azure Log Analytics | Chronicle | Defender for | Defender for Cloud | Defender for Endpoint | Detection engineering | EDR alert correlation | Entra ID | Event Hubs | FedRAMP | FedRAMP High | Flow Logs | Google SecOps | Google SecOps RBAC | Incident Response | Jira Service | Jira Service Management | Log Analytics | Log Ingestion | MITRE ATT&CK | MSSP SLAs | MTTA | MTTR | NIST 800 | NIST 800-172 | NIST 800-53 | Nessus | RBAC | SIEM | SIEM log ingestion | SOAR | SOAR playbooks | Security Hub | SentinelOne | SentinelOne Cloud Funnel | SentinelOne EDR | Service Management | VPC Flow Logs | VPC flow | Vulnerability Management
Education
N/A
Related jobs
-
800-53 | AD Connect | AWS IAM | AWS Identity | AWS Identity Center401k plan with company matching | Bereavement | Employee assistance program | Health, dental, and vision care | HolidaysSenior-level Full TimeRemote - Nationwide, United States R7h ago
-
Bash | Incident Response | JSON | MITRE ATT CK | PowershellFully remoteSenior-level Full TimeColumbia, SC, United States R9h ago
-
AWS Security | AWS Security Groups | App-ID | Azure NSG | Big-IPHybrid work scheduleSenior-level Full TimeHouston, TX, United States R12h ago
-
Cybersecurity Analyst - Remote USD 80K-133KCorrelation rules | Detection and Response | Endpoint Detection and Response | Endpoint detection | Forensics401k 403b employer match | Certification reimbursement | Emergency backup care | Legal Resources Plan | Life insuranceMid-level Full TimeVirginia Remote, United States R1d ago
-
Manager IT Security Engineering, Ford Energy USD 97K-153K365 Security | AI assisted security operations | AI-assisted Security | Access Management | Asset ManagementCommunity service paid time off | Employee resource groups | Flexible family care days | Medical, dental & vision coverage | Option to purchase additional vacation timeMid-level Full TimeGlendale, KY, United States R1d ago
-
Senior Security Compliance Engineer USD 146K-195K800-53 | Audit management | Awareness Training | CIS Controls | Continuous Control MonitoringPeriodic travel | Remote workSenior-level Full TimeRemote (United States); Canada R1d ago
-
Sr. Security Engineer (Data Security) USD 170K-185KAccess Control | Azure | Azure Monitor | Azure RBAC | CI/CD401k match | Birthday treat | Company sponsored virtual events | Free dental insurance | Free medical insuranceSenior-level Full TimeRemote, US R1d ago
-
Staff Application Security Engineer USD 170K-200KAPI Security | AWS | AWS SCPs | Abuse prevention | AuthenticationSenior-level Full TimeRemote (United States); Canada R1d ago
-
Infrastructure & Security Engineer USD 160K-205KAWS | Access Management | Audit Logging | Azure | Data Residency401k retirement savings plan | Accident insurance | Basic life and AD and D disability insurance | Comprehensive medical, dental and vision plans | Critical illness insuranceSenior-level Full TimeSan Diego, CA, Remote R1d ago
-
Cybersecurity Incident Response Engineer, Sr USD 117K-190KAutomation | Cloud Security | Custom scripting | Cybersecurity | Endpoint SecuritySenior-level Full TimeRemote, United States R1d ago
-
Sr. SOC Security Engineer II USD 125K-140KAWS | Automation | Azure | CIS Controls | Cause analysis401k match | Dental insurance | Educational assistance | Flexible work schedule | Health insuranceSenior-level Full TimeWashington DC R1d ago
-
Staff Threat Detection Engineer USD 175K-240KAWS | Alert triage | Automation | Bash | Cloud loggingSenior-level Full TimeRemote - USA R1d ago
-
Security Engineering Manager USD 170K-200KAutomation workflows | CIS Critical Security Controls | Cloud Security | Critical Security Controls | Cybersecurity FrameworkOn-call support | Remote workMid-level Full TimeWork from home, VA, United States R1d ago
-
Summer Internship - Security Engineering USD 50K-50KAWS | Access Control | Authentication | Azure | BashCollaborative team environment | Hands On Security Engineering Experience | Remote-first cultureEntry-level InternshipRemote, United States R1d ago
-
Sr. Blue Team Analyst USD 166K-333KAlerting | Cyber Threat | Cyber Threat Intelligence | Detection engineering | Event managementMentoring | Ongoing training | Remote workSenior-level Full TimeUnited States R1d ago
-
Director, Field Security (Remote Eligible) USD 235K-315K800-53 | Customer security | FedRAMP | FedRAMP Moderate | GRC401k match | Dental insurance | Flexible time off | Health insurance | Life insuranceExecutive-level Full Time-REMOTE, USA- R1d ago
-
Information Security Officer USD 148K-200KAPI Security | AWS | AWS Config | AWS Well Architected | AWS Well-Architected Security PillarPeriodic travel | Remote workSenior-level Full TimeRemote (United States); Canada R1d ago
-
Senior DevSecOps Engineer USD 150K-180KAWS | Admission control | Alert triage | CI/CD | CJIS401k | Accident insurance | Additional life insurance | Central Time Zone availability | Employer-paid disability insuranceSenior-level Full TimeChicago, IL, US R2d ago
-
Strategic Advisory Services Consultant (Remote) USD 115K-160KBusiness Risk Analysis | Business risk | CSIRT | Communications | CybersecurityEmployee networks | Office amenities | Paid adoption leave | Paid parental leave | Professional development opportunitiesSenior-level Full TimeUSA TX Remote, United States R2d ago
-
Application Security Architect USD 150K-224KAI Security | API Security | AWS | Access Control | Architecture ReviewSenior-level Full TimeRemote, Minnesota, United States of America R2d ago
-
Security Engineer IT - Remote USD 74K-118KAccess Control | Access Management | Audit Logging | Credential rotation | CyberArkCompliance focused environment | Operational stability | Remote workMid-level Full TimeHome, United States R2d ago
-
RMF Cybersecurity ISSO/SME 3 USD 107K-161K800-137 | 800-53 | ACAS | Assessment and Authorization | Continuous Monitoring401k match | AD&D insurance | Dental insurance | Disability insurance | Flexible spending accountSenior-level Full TimeUSA, North Charleston, 2155 Eagle Dr. … R2d ago
-
Senior Associate - IAM Engineer USD 124K-177KAWS | Access Management | Active Directory | Azure Active Directory | CyberArkAdoption Assistance | Leave programs | Student loan repayment programsMid-level Full TimeRemote, any state, US R2d ago
-
Security and Compliance Manager USD 134K-176KAccess Management | Awareness Training | Compliance Audits | Data Protection | Endpoint protectionDental insurance | Life insurance | Medical insurance | Paid family leave | Paid time offSenior-level Full TimeUnited States - Remote R2d ago
-
Classified Cyber Security Asc/ISSO/Grand Prairie, TX USD 62K-125K800-53 | ACAS | Configuration Management | EMASS | ESTIG401k match | Dental insurance | Education assistance | Employee assistance program | Flexible spending accountsMid-level Full TimeTexas, Grand Prairie-TX R2d ago